Re: cisco 851 and 2 LANs

Victor

The symptoms sound like there might be an issue with the configuration of the default gateway on the PCs. It sounds like they can access addresses within their own subnet but have difficulty in accessing addresses outside of their own subnet. Typically this would be an issue about the default gateway of the PC. Can you confirm what is the configured default gateway for the PC in the 2.2.2 network?

Re: cisco 851 and 2 LANs

May be I dont understand something but I don't have any idea what default gateway those hosts have. They are not under my control. I only have ethernet outlet and the information that it is connected to dummy L2 switch which serves for 2 LANs. As I said I can ping hosts on those LANs whis the only limitation that I need to provide the source address for the "secondary" net. In my opinion it means that packets that go out of FastEth4 have default 1.1.1.1 src address. When I explicitly change it with the source directive the result is positive, but it's not enough. I want packets destined for 2.2.2.0 to go out F4 with 2.2.2.1 return address (not 1.1.1.1 which they don't know where to send).

Re: cisco 851 and 2 LANs

Victor

I am slightly confused and hope that you can clarify. In the original post you mentioned a HP router that works with this. I am not clear whether the HP is at your office (not where you currently are) and works there or whether the HP is where you currently are and works in the situation when the Cisco does not. Perhaps you can clarify this?

Re: cisco 851 and 2 LANs

I see. I guess I should not have mentioned HP at all. It's a distraction, please, don't pay attention to it.

In my original post I simplyfied things a bit. Now I feel I nedd to explain it all.

There are 2 places A & B.

A is where I work and where I am located. It has 2 nets 192.168.0.0 /24 & 192.168.1.0 /28 and HP edge router with outside ip 3.3.3.1 /29.

B is a remote place, location unknown. There is cisco 851 there which has primary ip 1.1.1.1 /28 and to which I have a route. It also (obviously) connected to lan which I don't care about.

What I am interested in is another LAN (2.2.2.0/29)that is on the same switch with 1.1.1.0. Cisco see it, can ping it, provided I specify a source address. But I can not give source address to routing rules.I need to reach 2.2.2.0 from A as I do primary B.

Re: cisco 851 and 2 LANs

Victor

The symptoms that you describe make a bit more sense now. And they sound like a problem with end stations not with the router. If the router can ping the end stations when you specify a source address in 2.2.2 then it demonstrates that there is a good physical path and demonstrates basic IP connectivity. If the router can not ping the end stations if you use the default source address then it is likely that the end stations can not communicate with anything that is not on the local LAN. That is an end station problem and not a router problem.

Re: cisco 851 and 2 LANs

Victor

Are you saying that you want 1.1.1.x to see the router 1.1.1.1 as local, for 2.2.2.x to the router 2.2.2.1 as local and for 1.1.1.x and 2.2.2.x to not see each other as local? If so then you need to configure it as VLANs instead of as secondary addresses. If 1.1.1.x and 2.2.2.x are in the same VLAn then they are not separated.

Re: cisco 851 and 2 LANs

Victor

I have re-read the posts in this thread. I continue to believe that the symptoms you describe suggest that the issue is the default gateway on the end stations. I know that you have explained that you do not control these end stations. But for 192.168.0.0 to access 2.2.2.x the end stations must have a default gateway of the address on the router (2.2.2.1).

In one of your posts you mention the possibility of trying to use NAT to solve this issue. I do not believe that NAT will solve this problem. If you do not control those end stations then I believe that you need to communicate with whoever does control them and verify what they are currently configured with as default gateway.

The ProblemEnter EVCsHow It Works (Ingress)How It Works
(Egress)Step-by-Step ExampleFinal Thoughts The ProblemOn traditional
switches whenever we have a trunk interface we use the VLAN tag to
demultiplex the VLANs. The switch needs to determine which MAC ...
view more

The ProblemEnter EVCsHow It Works (Ingress)How It Works
(Egress)Step-by-Step ExampleFinal Thoughts Introduction: Netdr is a tool
available on a RSP720, Sup720 or Sup32 that allows one to capture
packets on the RP or SP inband. The netdr command can be use...
view more

IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...
view more